[root@net-border ~]# iptables -L -nv -t nat | grep 1443
[root@net-border ~]# vim /etc/sysconfig/iptables
[root@net-border ~]# grep 1443 /etc/sysconfig/iptables
-A PREROUTING -p tcp -m tcp --dport 21443 -j DNAT --to-destination 192.168.66.111:1443
[root@net-border ~]# /etc/init.d/iptables reload
iptables: Trying to reload firewall rules: [ OK ]
[root@net-border ~]# iptables -L -nv -t nat | grep 1443
0 0 DNAT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:21443 to:192.168.66.111:1443
[root@net-border ~]#
管理插件在已有的RabbitMQ权限模型上进行了扩展,通过分配标签来为用户赋权
目前有以下几种标签和角色:
Tag | Capabilities |
---|---|
(None) | No access to the management plugin |
management | Anything the user could do via AMQP plus:List virtual hosts to which they can log in via AMQPView all queues, exchanges and bindings in "their" virtual hostsView and close their own channels and connectionsView "global" statistics covering all their virtual hosts, including activity by other users within them |
policymaker | Everything "management" can plus:View, create and delete policies and parameters for virtual hosts to which they can log in via AMQP |
monitoring | Everything "management" can plus:List all virtual hosts, including ones they could not log in to via AMQPView other users's connections and channelsView node-level data such as memory use and clusteringView truly global statistics for all virtual hosts |
administrator | Everything "policymaker" and "monitoring" can plus:Create and delete virtual hostsView, create and delete usersView, create and delete permissionsClose other users's connections |
policymakerEverything "management" can plus:
monitoringEverything "management" can plus:
administratorEverything "policymaker" and "monitoring" can plus:
本文系转载,前往查看
如有侵权,请联系 cloudcommunity@tencent.com 删除。
本文系转载,前往查看
如有侵权,请联系 cloudcommunity@tencent.com 删除。